- 1 - Effective Date
- 2 - Who We Are
- 3 - Introduction and Changes to Policy
- 4 - Information We Collect and How We Use It on the Coffeebean Site and Demo Site
- Information you provide to us
- Information collected from third parties
- Information collected automatically
- Uses of Personally Identifiable Information and Disclosures to Third Parties
- 5 - Information We Collect via Social-ID and How We Use It
- Information Collected when End Users use the Social ID Service
- Information Automatically Collected from End User’s Browser.
- Use of Information Collected about End Users and Disclosures to Third Parties
- 6 - Security of Information
- 7 - EU- U.S. and Swiss-U.S. Privacy Shield Framework
- 8 - Contact Us
- 9 - Accessing and Correcting Your Information – for individuals outside of the EU and Switzerland
- 10 - User Communications
1 - Effective Date.
2 - Who we Are.
Coffee Bean Technology Corporation, a California Corporation with a U.S. location of 859 Corporate Way, Fremont, California 94539, (“Company”). Company is generally in the business of customer identity management. Specifically, Company engages with its business clients (“Clients”), to assist its Clients in creating and updating customer identity information relating to the Client’s customers (each an “End User”). The Company’s product for creating and maintaining the customer identity is called “Social-ID”, which is deployed on Client’s digital properties such as web pages, mobile apps, Wifi or beacon devices, and which allows End Users to register with Client via a traditional login or a social media login. Company maintains the following websites, as well as related tools, applications, widgets, and documentation (collectively all are referred to as the “Services” as used in this policy):
- the Company’s promotional website at http://www.coffeebeantech.com/ (the “Coffeebean Site”);
- the Company’s demo website and CoffeeBean’s demo mobile apps for IOS and Android http://demo.coffeebeantech.com/ (the “Demo Site”) to allow Clients and third party affiliates such as digital marketing companies, IT companies or technology companies (“Third Party Affiliates”) to evaluate the Social-ID product;
- the Company’s development website for use by Clients and Third Party Affiliates to obtain resources on how to integrate and use Social-ID http://dev.socialidnow.com/index.php?title=Main_Page (the “Development Site”)
- the Company’s Social-ID product website for deployment by Clients and used by Company at https://app.socialidnow.com/; (the “Social-ID”)
The company’s websites are hosted by Amazon Web Services.
3 - Introduction and Changes to Policy.
The Services are not intended for children under 13 years of age. We do not knowingly collect Personally Identifiable Information from children under 13. If we learn we have collected or received such information from a child under 13 without verifiable parental consent, we will delete that information. If you believe we might have Personally Identifiable Information from or about a child under 13, please contact us.
4 - Information We Collect and How We Use It on the Coffeebean Site and Demo Site.
There are three ways that we collect information from you: (A) we collect it when you expressly provide that information to us, (B) we collect it from third parties when you allow us to do so, and (C) we collect some information automatically when you interact with the Services.
- A - Information you provide to us.
Visitors. Unregistered users (visitors) have an ability to provide us with Personally Identifiable Information when contacting us, which can include but is not limited to: name, phone number, email address, job position, and employer information, and LinkedIn profile. We will use this information in order to interact with you and provide you customer service, such as to answer questions you may have about the Services.
Registered Users. When you register with us, send us email messages, submit forms to us, or provide information to us by any means, you will provide us with certain Personally Identifiable Information. Upon registration, we will ask you to provide some identifying information, which may include but is not limited to: name, phone number, email address, job position, employer information, and LinkedIn profile. We will use this information in order to identify you, interact with you and provide you customer service. We may also occasionally ask for personal information in order to assist you, such as for technical support.
- B - Information collected from third parties.
Visitors and Registered Users. You may use Facebook to sign in and register with us on the Demo Site, which is powered by the Social-ID. The Facebook service will authenticate your identity and ask you whether you agree to share certain personal information with us. The information we receive from Facebook about you is dependent upon your privacy settings in Facebook. We use this information from Facebook to simulate our services for demonstration purposes.
Company will not sell or disclose this information to third parties and this information is periodically deleted.
- C - Information collected automatically.
The Company uses Social-ID in conjunction with the Coffeebean Site and Demo Site. The Social-ID automatically collects certain information from your browser when you visit sites with our technology enabled. This information may include your browser type and language, IP addresses, referring pages, operating system, date and time and metadata information about the site, such as title, keywords, content and sections, in order to feed site usage analytics, analyze trends and provide personalization. We may also collect unique browser identifiers granted by the user such as web push notification endpoints and keys used to provide engagement services. User related data can be both persistent or session stored in the browser for user tracking and caching purposes.
We collect and store data by using cookies, local storage or similar technologies.
You can control the use of these technologies at the individual browser settings (such as “do not track” configuration), but if you disable them you may block or limit some services provided by our platform.
- D - Uses of Personally Identifiable Information and Disclosures to Third Parties.
We will not sell, trade, or rent Personally Identifiable Information we collect from you to third parties, except to the extent necessary:
- To protect ourselves from liability,
- To respond to a court order or subpoena, to comply with an investigation, or to comply with applicable laws or rules,
- To obtain services from other companies that help us with business activities, such as sending emails, maintaining Company servers, or providing customer service, or
- In connection with a merger, acquisition, or liquidation of the company.
In the event of a merger, acquisition, or sale of all or a portion of Company’s assets, you will be notified via email and/or a prominent notice on our website of any change in ownership or uses of your personal information, as well as any choices you may have regarding your Personally Identifiable Information.
We reserve the right to report to law enforcement agencies any activities that we in good faith believe to be unlawful.
5 - Information We Collect via Social-ID and How We Use It.
Social-ID is deployed on Client’s digital properties for purposes of creating and maintaining customer identity information relating to the Client’s End Users who interact with the digital properties.
There are two ways that we collect information about End Users: (A) we collect it when End Users use the Social-ID service, and (B) we collect it automatically from the End User’s browser when End User visits sites when Social-ID is enabled.
- A - Information Collected when End Users use the Social ID Service installed at Client’s Digital Properties.
The information that we collect on behalf of our Client changes accordingly to what Social-ID services are used.
- B - Information Automatically Collected from End User’s Browser.
Social-ID collects information about the End User’s browsing activity, which may include but is not limited to the End User browser type and language, IP addresses, referring pages, operating system, date and time and metadata information about the site, such as title, keywords, content and sections, in order to feed site usage analytics, analyze trends and provide personalization. Social-ID may also collect unique browser identifiers such as web push notification endpoints and keys used to provide engagement services. End User related data can be both persistent or session stored in the browser for user tracking and caching purposes.
Social-ID collects and stores data by using cookies, local storage or similar technologies. End User can control the use of these technologies at the individual browser settings, but if you disable them you may block or limit some services provided by Social-ID.
- C - Use of Information Collected about End Users and Disclosures to Third Parties.
All information collected about End Users via Social-ID is at the direction of our Clients, and Company does not directly engage with End Users. All data collected about End Users (“Client Data”) is disclosed to Client, belongs to Client, and not to Company; however, Company retains the right to use Client Data in an anonymized, aggregated fashion for its own internal development – improve the product, and for marketing and advertising purposes, not to compete with client. Company may use Client Data to provide reports to its Clients, and such information may include personally identifiable information about End Users. Company will store such Client Data for as long as necessary or appropriate to provide services to Client, or to comply with applicable laws or to enforce its agreements.
Company will not disclose any End User Personally Identifiable Information collected on behalf of Clients to any third parties, except to the extent necessary:
- To protect ourselves from liability,
- To respond to a court order or subpoena, to comply with an investigation, or to comply with applicable laws or rules, or
Because Clients own the Client Data, the Client controls its use, storage disclosure, and deletion, and Company merely follows the instructions and guidance of Client. If you are an individual who wants to modify or delete personal information which Company may be storing on behalf of Client, you must contact the Client directly.
6 - Security of Information.
Company uses industry high standard security measures and safeguards to ensure the security and integrity of all Personally Identifiable Information it collects through its Services. For more information please access our Trust page.
The safety and security of your information also depends on you. Where we have assigned you (or where you have a chosen) a password for access to Services, you are responsible for keeping this password confidential.
Unfortunately, the transmission of information via the internet and mobile platforms is not completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures we provide.
7 - EU-U.S. and Swiss-U.S. Privacy Shield Framework
The Privacy Shield Principles provide individuals located in the E.U. or Switzerland, as applicable, whose personal information collect with the right to access their personal information in order to review, correct, amend or delete information processed under the Principles.
European Union and Swiss End Users whose personal information we collect on behalf of a Client via Social-ID should first contact the Client, who is the controller of the End User’s personal information, to access their personal information.
European Union and Swiss individuals who are users of the Coffeebean Site or Demo Site that have inquiries or complaints regarding our Privacy Shield policy should contact Company as specified in the “Contact Us” section of this policy. Anyone who uses the Coffeebean Site or the Demo Site and is a registered user can update their information within their account settings.
In compliance with the Privacy Shield Principles, Company commits to resolve complaints about our collection or use of your personal information. If you have a complaint, please first contact Company as specified in the “Contact Us” section of this policy.
Company has further committed to refer unresolved Privacy Shield complaints to JAMS, an alternative dispute resolution provider located in the United States. The services of JAMS are provided at no cost to you. For more information about JAMS dispute resolution process or to file a complaint, please visit https://www.jamsadr.com/eu-us-privacy-shield
Company has also further committed to cooperate with the panel established by the EU data protection authorities (DPAs) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved Privacy Shield complaints concerning human resources data transferred from the EU and Switzerland in the context of the employment relationship.
The Federal Trade Commission has jurisdiction over Company’s compliance with the Privacy Shield.
An individual has the possibility, under certain conditions, to invoke binding arbitration for complaints regarding Company’s Privacy Shield compliance not resolved by any of the other Privacy Shield mechanisms; please visit this link for additional information: https://www.privacyshield.gov/article?id=ANNEX-I-introduction
Sections 4D and 5C of this policy explain how we may transfer personal information from the E.U. or Switzerland to third parties. We contractually require third parties to whom we transfer personal information to provide the same level of protections as the Principles. Company remains responsible for the personal information we receive and transfer under Privacy Shield.
In accordance with our legal obligations, we may also transfer, subject to a lawful request, personal information to public authorities for law enforcement or national security purposes.
8 - Contact Us.
859 Corporate Way, Fremont, California 94539
9 - Accessing and Correcting Your Information – for individuals outside of the EU and Switzerland
- A - End Users whose personal information we collect on behalf of a Client via Social-ID should first contact the Client, who is the controller of the End User’s personal information, to access their personal information.
- B - Individuals who are users of the Coffeebean Site or Demo Site and is a registered user can update their information within their account settings. Unregistered users may contact the Company as indicated in the “Contact Us” section of this policy. Company will use reasonable efforts to delete your information if you so request; however, because we and our web hosting company have backup systems and keep track of past transactions and/or activities, it may be impossible to completely delete your information. We will retain your information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
10 - User Communications
We may, from time to time, send you email to the email address collected from the CoffeeBean Site regarding our Services. In addition, if you indicate upon registration or otherwise that you are interested in receiving offers or information from us, we may occasionally send you direct email about products and services that may be of interest to you. Only we will send you these direct emails, and only if you “opted in” by indicating that you are interested in receiving these offers. If you do not want these mailings, you can tell us when you submit or edit your Personally Identifiable Information by sending us an email.